frappe-api-handler

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill includes examples that embed API keys/tokens directly in HTTP headers and curl commands (e.g., Authorization: token xxx:yyy), which encourages generating outputs that place secret values verbatim in commands or code, creating exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill accepts and processes arbitrary user-provided content via API endpoints (e.g., upload_file handling frappe.request.files, bulk_create parsing records, and other whitelisted methods that parse JSON from request bodies/fields), which clearly ingests untrusted third‑party/user-generated data as part of its runtime workflow.